[asterisk-dev] New security log channel
Klaus Darilion
klaus.mailinglists at pernau.at
Fri Apr 24 02:27:11 CDT 2009
freebetel schrieb:
> Hi,
>
> As discussed earlier this month with John Todd and Kevin Flemings in our
> meeting in Canada (IT360 & Asterisk conference), I'm working on adding
> more security log information to be treated later by an external process
> that will make decision about blocking access to certain IP addresses
> found to be a security threat.
>
> I'm starting to write code and patches to inform the Asterisk
> administrator about potential SIP and IAX2 attacks in realtime and I
> need to create a new log channel.
>
> Should we call it SECURITY? I checked the logger.c file and didn't find
> any specific channel log for security information (from the trunk source).
Do you mean a new class like debug, warning, error,...?
Then we could use
syslog.auth => security
and standard tools like fail2ban could be adopted.
regards
klaus
>
> Waiting for suggestions otherwise I will use SECURITY.
>
> Thanks.
>
> --
> Stephan Monette
> Unlimitel Inc.
> Tollfree: 1-877-464-6638
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> --Bandwidth and Colocation Provided by http://www.api-digital.com--
>
> asterisk-dev mailing list
> To UNSUBSCRIBE or update options visit:
> http://lists.digium.com/mailman/listinfo/asterisk-dev
More information about the asterisk-dev
mailing list